NVD Vulnerability Detail

Search Exploit, PoC

Exploit DB

NVD脆弱性検索トップ

->

NVD Vulnerability Detail

CVE-2026-33589

Summary	Lack of user input validation in the file upload functionality of Open Notebook v1.8.3 allows the application user to access local files content from the docker container via path traversal.
Publication Date	May 7, 2026, 8:16 p.m.
Registration Date	May 8, 2026, 4:09 a.m.
Last Update	May 7, 2026, 11:51 p.m.

Related information, measures and tools

No	URL	refsource	タグ
1	https://github.com/lfnovo/open-notebook/security/advisories/GHSA-842v-h4cj-r646	a6d3dc9e-0591-4a13-bce7-0f5b31ff6158

Common Vulnerabilities List

No	CWE	Name	URL
1	CWE-20	不適切な入力確認	https://cwe.mitre.org/data/definitions/20.html